Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
File:                     oHEAJhaNhq-46ZnPsqjonFct0vk.mft (raw, json)
Hash identifier:          wxOSvaVtNQ69sG0BDm3SKMuhCLRHg0SJhc9WPutOXhE=
Subject key identifier:   A6:10:8F:B6:DB:17:FE:38:B5:D9:96:32:50:E7:C2:57:42:0F:C5:90
Authority key identifier: A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
Certificate issuer:       /CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Certificate serial:       019881D542BBAD87FBA53BA070BA69023AE7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
Manifest number:          1369
Signing time:             Thu 07 Aug 2025 00:01:33 +0000
Manifest this update:     Thu 07 Aug 2025 00:01:33 +0000
Manifest next update:     Fri 08 Aug 2025 00:01:33 +0000
Files and hashes:         1: oHEAJhaNhq-46ZnPsqjonFct0vk.crl (hash: DAIKFHqzugtLsmbO++jkh3Pxb5DLae+CNUPGR3VTdFY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:d5:42:bb:ad:87:fb:a5:3b:a0:70:ba:69:02:3a:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
        Validity
            Not Before: Aug  7 00:01:33 2025 GMT
            Not After : Aug  8 00:01:33 2025 GMT
        Subject: CN=a6108fb6db17fe38b5d9963250e7c257420fc590
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:79:b3:e6:98:4c:38:10:0f:6c:65:55:3f:66:
                    a7:09:ea:db:c7:9a:44:85:57:4f:5c:d5:91:24:6a:
                    df:6b:62:f3:d9:ed:61:11:68:03:36:4d:85:54:60:
                    48:0c:2e:b5:9d:a0:1b:19:9b:bd:e5:76:87:7b:1e:
                    ff:92:cb:d5:9e:f4:64:d4:12:36:e3:d2:fd:4a:96:
                    8b:4d:f1:35:0e:63:07:4f:2f:fc:9e:02:26:9a:fe:
                    00:ef:2d:b4:5e:6d:45:39:cb:80:fd:be:8e:51:d1:
                    72:17:85:0d:66:3e:2c:01:ca:27:1e:83:47:3f:46:
                    14:53:f9:c0:3f:b3:57:f2:2c:7e:b1:b3:56:ff:44:
                    a2:9d:5f:f0:0b:c6:a3:e2:3a:08:05:a1:9f:3a:a3:
                    bb:66:e1:11:58:6c:31:49:c9:02:41:11:a2:d6:ac:
                    87:3d:36:01:89:c9:22:7d:b7:97:b5:23:cf:b5:4d:
                    0a:19:d3:cf:f4:72:12:c6:5e:64:2f:3c:5f:e2:b7:
                    df:85:82:d6:0c:38:b6:44:72:77:e3:41:8d:63:e0:
                    c7:80:bb:65:d7:3f:14:8b:b7:66:a5:5f:62:86:3c:
                    5a:22:5e:e8:98:25:a4:d6:06:fb:2b:bb:ae:3b:59:
                    47:75:93:61:eb:eb:29:64:63:b2:c2:c4:5e:1a:46:
                    5b:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:10:8F:B6:DB:17:FE:38:B5:D9:96:32:50:E7:C2:57:42:0F:C5:90
            X509v3 Authority Key Identifier:
                keyid:A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:80:c8:db:0e:c6:ec:99:7f:62:ef:8b:fe:3b:16:a6:3d:68:
         3b:74:d7:d4:9a:2b:b3:2f:87:c6:14:17:bc:a9:c7:9f:79:b0:
         31:3b:29:58:65:c1:0f:3b:4e:3e:8b:02:34:97:f2:3d:7c:af:
         ca:59:09:3e:e6:b4:03:05:c8:1c:fa:2f:ac:a9:11:d3:4a:28:
         4b:0d:c1:8c:42:70:64:84:af:0b:2d:ba:26:f3:c0:9e:05:14:
         96:43:3e:61:fe:87:9f:01:f4:d8:76:e5:3a:73:b6:bd:0f:36:
         a3:85:38:1e:cc:4a:b1:ea:98:b5:60:70:c0:46:c1:31:57:ae:
         db:66:d8:fe:f8:4c:eb:9c:09:46:2c:93:eb:c8:c3:3f:81:fc:
         7d:d2:85:89:94:c1:a4:81:62:85:e1:c7:79:25:1b:05:04:3e:
         e6:4e:47:ba:25:33:5d:ef:32:11:e8:d0:d2:6a:bf:58:81:30:
         b2:1f:43:08:07:ac:12:40:eb:d6:5c:4a:3b:0c:fb:c8:a3:6a:
         f8:cc:6d:05:69:a8:99:d9:62:cd:d1:3a:5a:7d:b7:16:80:13:
         24:a4:19:35:80:4e:1c:73:23:53:90:2a:3d:73:2b:a1:24:62:
         f5:e1:66:77:35:b1:19:c3:3f:48:35:4c:17:3e:1f:39:49:80:
         2c:13:c4:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----